Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 23, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
651 9.9 緊急
Network 		オラクル Oracle Identity Manager オラクルのOracle Identity Managerにおけるアクセス制御に関する脆弱性 New CWE-284
不適切なアクセス制御 		CVE-2026-35294 2026-06-22 11:39 2026-06-17 Show GitHub Exploit DB Packet Storm
652 7.5 重要
Network 		- オラクルのOracle WebCenter Sites Support Toolsにおける重要な機能に対する認証の欠如に関する脆弱性 New CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-35295 2026-06-22 11:39 2026-06-17 Show GitHub Exploit DB Packet Storm
653 9.8 緊急
Network 		- オラクルのOracle WebCenter Sites Support Toolsにおける重要な機能に対する認証の欠如に関する脆弱性 New CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-35296 2026-06-22 11:39 2026-06-17 Show GitHub Exploit DB Packet Storm
654 9.1 緊急
Network 		オラクル Oracle WebLogic Server オラクルのOracle WebLogic Serverにおけるアクセス制御に関する脆弱性 New CWE-284
不適切なアクセス制御 		CVE-2026-35298 2026-06-22 11:39 2026-06-17 Show GitHub Exploit DB Packet Storm
655 8.8 重要
Network 		オラクル Oracle WebLogic Server オラクルのOracle WebLogic Serverにおける重要な機能に対する認証の欠如に関する脆弱性 New CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-35299 2026-06-22 11:39 2026-06-17 Show GitHub Exploit DB Packet Storm
656 9.8 緊急
Network 		オラクル Oracle WebLogic Server オラクルのOracle WebLogic Serverにおける信頼できないデータのデシリアライゼーションに関する脆弱性 New CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-35300 2026-06-22 11:39 2026-06-17 Show GitHub Exploit DB Packet Storm
657 10 緊急
Network 		オラクル Oracle WebLogic Server オラクルのOracle WebLogic Serverにおける重要な機能に対する認証の欠如に関する脆弱性 New CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-35301 2026-06-22 11:39 2026-06-17 Show GitHub Exploit DB Packet Storm
658 8.3 重要
Network 		オラクル Oracle WebLogic Server オラクルのOracle WebLogic Serverにおけるオープンリダイレクトの脆弱性 New CWE-601
オープンリダイレクト 		CVE-2026-35302 2026-06-22 11:39 2026-06-17 Show GitHub Exploit DB Packet Storm
659 8.8 重要
Network 		オラクル Oracle WebLogic Server オラクルのOracle WebLogic Serverにおける重要な機能に対する認証の欠如に関する脆弱性 New CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-35303 2026-06-22 11:39 2026-06-17 Show GitHub Exploit DB Packet Storm
660 9.8 緊急
Network 		オラクル Oracle Coherence オラクルのOracle Coherenceにおける重要な機能に対する認証の欠如に関する脆弱性 New CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-35304 2026-06-22 11:39 2026-06-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
254441 7.5 HIGH
Network 		aeroadmin aeroadmin AeroAdmin 4.1 uses a function to copy data between two pointers where the size of the data copied is taken directly from a network packet. This can cause a buffer overflow and denial of service. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-8893 2024-11-21 12:34 2017-07-3 Show GitHub Exploit DB Packet Storm
254442 7.5 HIGH
Network 		linux linux_kernel The NFSv4 server in the Linux kernel before 4.11.3 does not properly validate the layout type when processing the NFSv4 pNFS GETDEVICEINFO or LAYOUTGET operand in a UDP packet from a remote attacker.… CWE-129
 Improper Validation of Array Index 		CVE-2017-8797 2024-11-21 12:34 2017-07-3 Show GitHub Exploit DB Packet Storm
254443 6.5 MEDIUM
Network 		elastic kibana In Kibana X-Pack security versions prior to 5.4.3 if a Kibana user opens a crafted Kibana URL the result could be a redirect to an improperly initialized Kibana login screen. If the user enters crede… CWE-200
Information Exposure 		CVE-2017-8443 2024-11-21 12:34 2017-07-1 Show GitHub Exploit DB Packet Storm
254444 8.1 HIGH
Network 		microsoft azure_active_directory_connect Azure AD Connect Password writeback, if misconfigured during enablement, allows an attacker to reset passwords and gain unauthorized access to arbitrary on-premises AD privileged user accounts aka "A… CWE-640
 Weak Password Recovery Mechanism for Forgotten Password 		CVE-2017-8613 2024-11-21 12:34 2017-06-29 Show GitHub Exploit DB Packet Storm
254445 7.0 HIGH
Local 		microsoft windows_server_2016
windows_10 		The DirectX component in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to run arbitrary code in kernel mode via a specially crafted application… CWE-281
 Improper Preservation of Permissions 		CVE-2017-8579 2024-11-21 12:34 2017-06-29 Show GitHub Exploit DB Packet Storm
254446 7.0 HIGH
Local 		microsoft windows_server_2016
windows_10 		The graphics component in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to run arbitrary code in kernel mode via a specially crafted applicatio… CWE-665
 Improper Initialization 		CVE-2017-8576 2024-11-21 12:34 2017-06-29 Show GitHub Exploit DB Packet Storm
254447 5.5 MEDIUM
Local 		microsoft windows_server_2016
windows_10 		The kernel in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to obtain information via a specially crafted application, aka "Microsoft Graphics … CWE-200
Information Exposure 		CVE-2017-8575 2024-11-21 12:34 2017-06-29 Show GitHub Exploit DB Packet Storm
254448 7.8 HIGH
Local 		microsoft windows_defender
forefront_endpoint_protection
security_essentials
endpoint_protection
windows_intune_endpoint_protection 		The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on 32-bit versions of Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows S… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-8558 2024-11-21 12:34 2017-06-29 Show GitHub Exploit DB Packet Storm
254449 4.7 MEDIUM
Local 		microsoft windows_rt_8.1
windows_server_2012
windows_server_2016
windows_7
windows_10
windows_8.1
windows_server_2008 		The kernel in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 a… CWE-200
Information Exposure 		CVE-2017-8554 2024-11-21 12:34 2017-06-29 Show GitHub Exploit DB Packet Storm
254450 7.5 HIGH
Network 		elastic kibana Kibana versions prior to 5.2.1 configured for SSL client access, file descriptors will fail to be cleaned up after certain requests and will accumulate over time until the process crashes. CWE-769
 DEPRECATED: Uncontrolled File Descriptor Consumption 		CVE-2017-8452 2024-11-21 12:34 2017-06-17 Show GitHub Exploit DB Packet Storm